Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/e8fIXVZYCc0Lk1hddYzqU88XYgg.roa
File: e8fIXVZYCc0Lk1hddYzqU88XYgg.roa (raw, json)
Hash identifier: vONsjJXll4iKgsueTK+nexd7oS5z4TEr98Mal0nvAKI=
Subject key identifier: 7B:C7:C8:5D:56:58:09:CD:0B:93:58:5D:75:8C:EA:53:CF:17:62:08
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0193E326156F71913066985A2F65B5C18985
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/e8fIXVZYCc0Lk1hddYzqU88XYgg.roa
Signing time: Fri 20 Dec 2024 08:19:03 +0000
ROA not before: Fri 20 Dec 2024 08:19:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29632
IP address blocks: 62.205.128.0/19 maxlen: 20
62.205.128.0/20 maxlen: 20
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
94.131.0.0/23 maxlen: 23
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
95.164.52.0/22 maxlen: 24
95.164.56.0/22 maxlen: 22
95.164.72.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
195.214.212.0/22 maxlen: 22
2a01:d0:303::/48 maxlen: 48
2a01:d0:305::/48 maxlen: 48
2a01:d0:308::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
2a01:d0:31d::/48 maxlen: 48
2a01:d0:333::/48 maxlen: 48
2a01:d0:962::/48 maxlen: 48
2a01:d0:1657::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:8000::/33 maxlen: 33
2a01:d0:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:26:15:6f:71:91:30:66:98:5a:2f:65:b5:c1:89:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Dec 20 08:19:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bc7c85d565809cd0b93585d758cea53cf176208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:7f:08:86:95:bc:98:af:f6:c2:79:fc:17:
e7:ff:c0:48:57:9f:a2:98:58:4e:ed:77:2c:31:62:
fb:a0:b5:6c:e3:9d:b2:8e:b6:c6:6a:38:27:9f:d6:
c9:8f:55:2c:06:33:c0:50:eb:61:e0:3e:cd:c2:1d:
7e:e3:6a:30:c2:6c:64:59:c2:35:af:c0:ce:26:bf:
3e:b1:ad:1c:40:b0:11:84:11:fe:5e:61:92:c5:38:
92:a3:2a:b4:2e:47:5a:53:bf:c9:7f:0d:38:7e:93:
1c:fa:1b:f3:19:6d:12:f1:9b:b7:71:df:13:a6:a3:
d3:44:88:02:74:01:6e:43:2c:23:9f:7a:15:5e:b3:
cb:b1:a4:5c:78:ec:05:61:40:d6:23:1a:4a:c7:db:
77:7f:41:dc:19:5b:a7:90:4b:2c:1f:c8:7d:5d:03:
46:ea:78:90:2e:01:9c:5d:1f:04:85:7c:e7:05:ef:
7c:8c:57:97:8f:a9:f5:a9:c9:c3:73:90:9e:bd:3e:
56:80:23:b8:1c:23:58:e6:d3:36:05:4c:c2:82:96:
2f:99:ba:b0:2d:1c:62:d3:4e:a2:e7:13:a6:66:e7:
7c:a1:38:7a:6f:e9:45:94:56:ed:8d:8d:82:71:e8:
38:e3:5a:dd:ac:bb:0f:23:d6:b0:d1:04:4b:16:02:
f4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C7:C8:5D:56:58:09:CD:0B:93:58:5D:75:8C:EA:53:CF:17:62:08
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/e8fIXVZYCc0Lk1hddYzqU88XYgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.170.0-95.164.175.255
195.214.212.0/22
IPv6:
2a01:d0:303::/48
2a01:d0:305::/48
2a01:d0:308::/48
2a01:d0:317::/48
2a01:d0:31d::/48
2a01:d0:333::/48
2a01:d0:962::/48
2a01:d0:1657::/48
2a01:d0:7fff::-2a01:d0:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
90:f5:1a:75:5d:f4:1d:23:8a:28:c3:b7:c7:1a:78:7f:14:e5:
ea:82:41:59:f3:d8:74:f4:ea:37:3e:25:56:65:5d:32:b2:46:
ae:78:74:e1:95:33:b7:e7:80:10:fd:1a:d6:31:88:06:04:ca:
93:35:1f:b0:34:24:52:1f:97:80:f6:98:0a:db:56:e4:7f:24:
c9:31:75:10:bb:e6:4e:62:92:df:e2:11:b3:d7:5e:d4:f8:5d:
bd:5b:b1:b3:06:6e:91:b8:84:99:22:58:57:a6:e1:e9:e0:d7:
6c:1f:36:14:b3:46:4b:50:e2:30:1c:48:50:16:40:c1:6d:f3:
2b:92:50:3a:17:73:87:47:a3:86:15:9b:7e:54:a8:e8:00:4d:
4e:1c:28:00:38:38:a0:ac:17:9a:76:d4:fa:5b:3d:25:66:c3:
a8:72:89:1e:84:01:24:63:2e:c9:d0:a9:e9:46:fc:9e:de:4e:
fa:11:80:04:dc:36:4f:2d:6b:19:a1:58:3b:4f:67:2c:7a:16:
1d:d7:cc:3e:a6:b3:93:bd:27:dc:c4:15:17:6e:9c:5a:0b:01:
11:5f:21:b7:50:0b:12:af:64:2c:25:82:68:ee:3c:69:7c:39:
82:09:e4:a2:6e:8d:d1:c9:f0:cf:be:f1:ee:3e:c8:83:a1:5e:
dc:a7:08:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:30:58 2025 by rpki-client